code tampering
Software Supply Chain Security Deconstructed
In the last several years, software supply chain security has become a critical focus for organizations worldwide. While the SolarWinds software supply chain attack in 2020 and the Kaseya ransomware attacks in ...
Three Lessons from the Ledger Connect Kit Supply Chain Attack
On December 14, 2023, the crypto community held its breath as news of a critical compromise involving the Ledger Connect Kit, a vital software component connecting hardware wallets to dApps, hit the ...
Mastering SDLC Security: Best Practices, DevSecOps, and Threat Modeling
In the ever-evolving landscape of software development, it’s become absolutely paramount to ensure robust security measures throughout the Software Development Lifecycle (SDLC). Need proof? In the last three years alone, we’ve witnessed ...
(More) Common Security Mistakes when Developing Swift Apps – Part II
In my post last week I shared common security mistakes developers make when building Swift applications – covering insecure data storage, symmetric key algorithms, insecure communication and more. If you haven’t read ...